Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
File: xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft (raw, json)
Hash identifier: fBQr47mAJlUsxYiQFj9zIH32aoVcPEQpIYyM22X8meQ=
Subject key identifier: 41:5C:46:99:F9:11:D9:A1:28:C2:DF:1C:11:64:6F:BC:39:4A:B7:66
Authority key identifier: C6:C6:65:3E:87:BB:2E:F9:AD:BB:06:19:60:E2:05:00:A5:54:F0:35
Certificate issuer: /CN=c6c6653e87bb2ef9adbb061960e20500a554f035
Certificate serial: 0199228D0672320416187366D136569E71ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
Manifest number: 063C
Signing time: Sun 07 Sep 2025 05:01:31 +0000
Manifest this update: Sun 07 Sep 2025 05:01:31 +0000
Manifest next update: Mon 08 Sep 2025 05:01:31 +0000
Files and hashes: 1: CL-hnZLAW32dB0McMUvKXumHbjc.roa (hash: /6abOSVtqiSm907QP0eqatEoUJFnqFDpeoJMvvSk4WA=)
2: xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl (hash: P5OJr88Iopn5BoZ4lsHfASBXLz5feiQ5volN1fu0GFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:8d:06:72:32:04:16:18:73:66:d1:36:56:9e:71:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6c6653e87bb2ef9adbb061960e20500a554f035
Validity
Not Before: Sep 7 05:01:31 2025 GMT
Not After : Sep 8 05:01:31 2025 GMT
Subject: CN=415c4699f911d9a128c2df1c11646fbc394ab766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:4f:4b:f4:83:98:04:b4:e0:52:b9:50:74:53:
75:fc:9f:44:38:01:ee:cc:93:41:cf:f9:29:6a:60:
e4:71:60:f0:d7:d7:f0:21:46:02:14:21:6c:fc:46:
50:e5:db:4b:26:c9:5a:5d:22:44:1d:96:a9:4e:0c:
9a:9c:3b:ff:83:f6:85:24:94:fa:bc:90:bf:9e:34:
4f:c7:c1:f0:ed:c9:6f:79:bd:9c:02:45:1a:cd:87:
bf:b5:9a:0a:2b:08:c1:3c:de:22:ad:e4:90:ba:de:
ec:ee:ea:71:a2:c0:17:20:8e:43:13:a8:9c:08:bd:
75:4c:d8:c3:32:d0:27:bd:51:65:e7:4b:c8:ae:7e:
0d:a9:32:14:1d:6d:d0:8e:39:3b:7e:fb:0d:40:65:
4d:5a:5a:c1:56:25:c5:00:1b:82:ef:09:31:8e:73:
02:a1:cb:4c:fc:ed:19:d7:a6:19:4c:d5:a9:0e:c7:
72:cd:1e:ca:2a:18:2c:59:d9:e4:2b:92:1d:84:0b:
ef:e8:28:1b:ed:07:0f:96:41:7b:50:65:11:b8:af:
77:0e:62:8a:66:9b:1c:16:32:21:3a:76:08:49:cc:
cf:4c:b6:ea:ff:7f:4d:5c:d7:74:6d:a1:f9:32:88:
ce:44:3a:1b:8a:32:61:54:f4:2c:0b:2a:66:55:a4:
cf:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:5C:46:99:F9:11:D9:A1:28:C2:DF:1C:11:64:6F:BC:39:4A:B7:66
X509v3 Authority Key Identifier:
keyid:C6:C6:65:3E:87:BB:2E:F9:AD:BB:06:19:60:E2:05:00:A5:54:F0:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xsZlPoe7LvmtuwYZYOIFAKVU8DU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/961a72-70fd-450f-9fe9-3bba3628324b/1/xsZlPoe7LvmtuwYZYOIFAKVU8DU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:2f:a2:59:b3:f1:5d:cd:e0:22:75:d9:eb:7c:18:fb:23:9a:
70:a7:0a:5f:46:ac:14:07:96:cf:06:12:ce:78:d0:35:02:cb:
d6:d6:8a:3b:38:d6:66:0b:4f:14:9f:20:68:af:da:6d:36:d2:
e8:09:fe:ed:17:4e:a7:55:41:d2:06:a6:aa:0b:c8:d8:55:87:
21:96:b1:4b:9a:3d:e0:de:39:7b:cc:d0:83:38:12:a5:1d:7b:
83:3f:77:f4:94:c5:ed:ac:74:8e:c0:eb:34:f3:ac:fb:a5:38:
dd:76:05:6d:aa:16:16:07:cf:f4:14:32:64:c0:ac:88:2c:62:
c4:ce:9b:9c:01:21:44:21:07:c4:3d:22:f4:89:60:09:0b:e5:
7d:0a:29:10:f2:82:fc:57:c0:be:34:a0:ad:0c:9b:3d:ce:e6:
e8:7d:94:48:81:3a:e4:5d:cb:03:20:fb:c4:34:2b:eb:37:c1:
ca:a6:a4:a6:88:78:75:c4:19:b4:67:a1:47:99:ad:a5:e6:84:
58:a4:10:cc:f7:67:38:6a:bf:4f:7b:87:e1:1d:8e:be:b2:f8:
40:3a:51:df:ca:db:47:30:53:2f:e3:5e:23:be:11:7c:1c:04:
3e:e0:80:d0:24:b4:52:f3:dd:95:c6:29:03:51:1d:3b:80:2d:
29:e4:7a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:24:55 2025 by rpki-client